Vulnerabilities > CVE-2019-7216 - Unspecified vulnerability in Encodable Filechucker 4.99Efreee02/5.09
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
encodable
Summary
An issue was discovered in FileChucker 4.99e-free-e02. filechucker.cgi has a filter bypass that allows a malicious user to upload any type of file by using % characters within the extension, e.g., file.%ph%p becomes file.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |